ardagent

Trojans exploit Mac OS X ARDAgent flaw

Building on the Trojan released last week, a group of hackers appear to be targeting the Mac OS X platform with more variations.

Last Thursday, Mac antivirus vendors Intego and SecureMac reported a serious vulnerability within the Apple Remote Desktop Agent (ARDAgent). It is part of the remote-management component of Mac OS X 10.4 and 10.5 and is owned by root. Thus, the ARDAgent executable runs this malicious code as root without requiring a password.

The Washington Post's Brian Krebs reported on Monday the presence of a hacker forum devoted to the development of Trojans around this … Read more

Originally posted at Defense in Depth

June 24, 2008 9:18 AM PDT By Robert Vamosi

Topics:

Security

Tags:

security,

Apple,

ARDAgent,

Apple remote desktop agent,

Brian Krebs